3 matches found
K000160555: OpenSSL vulnerability CVE-2026-22795
Security Advisory Description Issue summary: An invalid or NULL pointer dereference can happen in an application processing a malformed PKCS12 file. Impact summary: An application processing a malformed PKCS12 file can be caused to dereference an invalid or NULL pointer on memory read, resulting ...
UBUNTU-CVE-2026-22795
Issue summary: An invalid or NULL pointer dereference can happen in an application processing a malformed PKCS12 file. Impact summary: An application processing a malformed PKCS12 file can be caused to dereference an invalid or NULL pointer on memory read, resulting in a Denial of Service. A type...
PT-2026-4940
Name of the Vulnerable Software and Affected Versions OpenSSL versions 3.4.0 through 3.6.0 Description The vulnerability relates to improper validation of PBMAC1 parameters within PKCS12 files. Specifically, the PBKDF2 salt and keylength parameters are used without sufficient validation during MA...